[Webkit-unassigned] [Bug 229235] REGRESSION(r279256): Crash in JSC::FTL::saveAllRegisters
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Aug 25 14:54:24 PDT 2021
https://bugs.webkit.org/show_bug.cgi?id=229235
Michael Catanzaro <mcatanzaro at gnome.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|REGRESSION(r??????): Crash |REGRESSION(r279256): Crash
|in |in
|JSC::FTL::saveAllRegisters |JSC::FTL::saveAllRegisters
--- Comment #20 from Michael Catanzaro <mcatanzaro at gnome.org> ---
(In reply to Yusuke Suzuki from comment #19)
> @Michael Can you reproduce this crash after
> https://trac.webkit.org/changeset/280578/webkit ?
Yes, that commit predates 2.33.3.
(In reply to Michael Catanzaro from comment #18)
> I'm on the last stages of my bisect. It probably broke in r279256. Will
> update the bug title after I've confirmed for sure.
I've narrowed the first bad commit down to r279254-r279263. This is a small enough range that I'm very confident it will turn out to be r279256 "Use ldp and stp more for saving / restoring registers on ARM64." It's the only JSC commit in this range, and it notably touches FTL::saveAllRegisters.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210825/e315e070/attachment.htm>
More information about the webkit-unassigned
mailing list